Android Application Security Study

Android App Security Learning

Into Frida&&FART Group

Plus WeChat: r0ysue (Note: Into FridaFart Group)

—

Tools Related update

Some of the links are for charge links such as Knowledge Planet, Little Goose Lane, etc. Do not enter

Tools	Update
Fart	- "Fart8 Ultimate": Only Nexus5x, Pixel1 (XL) support swiping - "Fart12 Shell": 1. Fart10 Upgrade to Fart12, Off Generation 12 Still so easy! 2. No root, and detection fingerprint against all major manufacturers 3. (todo) Kernel module syscall hook for direct use, ignoring eBPF's high version limit 4. (todo) Built-in Frida over-detection scheme - jadx-gui custom version Auto-repair second-generation shell: Report Fart Shell King Course Giveaway
r0env	- Introduction: r0env: Creating the First Android Reverse Environment for Young People! - Two Hours of Video on r0env - r0env2011 (Many people share with me r0env2021 because it has DDMS, hyperpwn, and so on) - r0env2022(Shop Home Page Rotation Title Five) - todo:M Chipset r0env... Not Now Mostly Because It's Not Mature
Frida	- Android Frida Reverse and Packet Capture Signature Edition - Frida Reverse and Protocol Analysis Signature Edition - todo: Android Frida Application SO Reverse Analysis Signature Edition Pre-Sold
KernelSU	- Pixel3 - Pixel4 - Android 13 and KernelSU Certificate Import and Packet Capture Full Set of Validations on Pixel4 ok, Video Version - Pixel5 - Mi8: Also addresses the issue of wifi not being available after Xiaomi self-compiles boot - Pixel5 - One plus 7
cloud phone	- rock5b, OneDrive Android cloud phone native support frida hook so - orangepi5: A few hundred dollar cloud phone bundle
iOS	- Prison Break: iOS12:The Most Capable iPhone6, Two Hundred Dollar iOS Reverse Environment -Catch: https://t.zsxq.com/10WVReMbd, https://t.zsxq.com/10lQkInqh - Prison Break:iOS14-16:iPhoneX

PS: The above mobile phone, hardware, books, and other places to order (click to see more at the seller)

—

FRIDA Series Articles

A. Environment Preparation and Getting Started

• 01.Android Environment Preparation: Google Original Mirror 8.1, TWRP, Magisk root
• 02. An article takes you to the heart of frida (based on Android 8.1) (code updated: 20200512, see folder compression package)

B.FRIDA script article

• 01.FRIDA Script Series (I) Getting Started: dump Bluetooth Interfaces and Instances on Android 8.1
• 02.FRIDA Script Series (II) Growth: Dynamic and Static Combined Reverse WhatsApp
• 03.FRIDA Script Series (III) Psychic: Baidu AI "Tuning" TikTok AI
• 04.FRIDA Script Series (IV) Update: Major Updates to Several Major Mechanisms

C.FRIDA API

• 01.FRIDA-API usages: rpc, Process, Module, Memory usage and examples
• 02.FRIDA-API Usages: Java, Interceptor, NativePointer (Function/Callback) Usage and Examples
• 03.Frida Java Hook Details (Android9): Code and Samples (top)
• 04.Frida Java Hook Details (Android9): Code and Examples (below)

D. Practical FRIDA

• 01. Functional FRIDA Advanced: Memory Roaming, 'hook anywhere', Packet Grab
• 02. Practical FRIDA Advancements: Unpacking, Automating, Practical Issues Collection
• 3. Practical FRIDA Advancements: Active Invocation, CipherStar

—

FART Series Articles

Source Family

• 2020 Android Source Code Compilation Guide and 'FART' Off-Shell Google Full Device Image Launch
• FART source parsing and compilation mirroring support to Pixel2(xl) (link:https://pan.baidu.com/s/1zAYliYbkagdUUsykww_L4g extract:vv5u)
• 'XPOSED'Change One: Get Features

'Kali Linux' virtual machine download seed in 'FART/' folder

OPPOSRC: The Battle Series from Galway

• Confrontation from High Latitude (1): Custom ART interpreter stripping all first and second generation shells (Attachment)
• Confrontation from High Latitude (2): Magic Modified XPOSED Over Frame Detection (top)
• Confrontation from High Latitude (3): Magic Alterations XPOSED Over Frame Detection (below) (Annex 1, [Annex 2] (https://t.zsxq.com/BqFAIEu))
• Confrontation from Galway (4): Custom Android Kernel Over Anti-Debug(Attachment: Link: https://pan.baidu.com/s/1zAYliYbkagdUUsykww_L4g Extract Code: vv5u])
• Confrontation from High Latitude (5): Replace the Android kernel and unpack Linux commands and environments (attachment)

Hit Coder: Premium Serial

• Environment Configuration for Reverse Android App Lesson 1
• Introduction to the Reverse Magic frida, Second Reverse Course on Android Apps
• Top Quality Plus Android App Reverse Course 3 frida Injection Okhttp Scratches Top
• frida Injection into Okhttp Package Chapter 4 Reverse Course on Android Apps
• Quality Continuous Running Bank Android App Reverse Course 5 frida Injection Okhttp Packet Capture Next

Collections:

• "Summary of Common Java Layer Anti-Debugging Techniques for root Detection"
• "Challenging the $200 Cost of iOS Reverse Environment Without macOS Reverse iOS APP"
• "Pixel1 Replacement: OnePlus3 Phone Swipe KaliNethunter to Unpack the Full Linux Command Environment"
• "Pixel4 Parity: A Guide to OnePlus7 Brushing NetHunter (android10)"
• "Challenging Reverse iOS APP without macOS" ObjC syntax, iOS application development, and Objection Automation hook Getting Started
• Frida Prerequisites: Advanced iOS/ObjC Syntax and Its ARM Assembly Implementation
• Frida hook/invoke iOS and Memory Scratches and Black Box Calls
• 2023HW Mobile Arsenal Tools Tips Sharing
• A Standard Algorithm SO Reduction Problem
• Frida and VPN Packet Capture Configuration after Pixel4 Flushes into KernelSU